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CLAIMS: 



1 . A granting method (E) to grant a modification device (5) a modification right 

to modify an application in a data carrier (S), wherein the following steps are carried out: 

generation of a first key information item (Kl) and of an associated second 
key infomiation item (EC2) for one or more data earners (S) identified by a data carrier 
identification information item (ID); 

granting of the modification right for data carriers (S) identified by the data 
carrier identification information item (ID) by ou^utting of the data earner identification 
information item (ID) and of the associated second key information item (K2) to the 
modification device (5); 

checking of the association of the first key information item (Kl) stored in the 
data carrier (S) with the second key information item (K2) in the data carrier (S) that was 
output to the data carrier (S) by the modification device (5) and, if the result of the check is 
positive; 

allowing of the modification of the application (Al, A2, A3, A4) m the data 
carrier (S) by the modification device (5). 

2- A granting method (E) as claimed in claim 1, wherein the modification right 
gives the right to install and/or update and/or delete the application (Al, A2, A3, A4) in the 
data carrier (S). 

3- A granting method (E) as claimed in claim 1, wherein the modification right 
only gives the right to modify a specific appUcation (Al, A2, A3, A4) in the data carrier (S). 

4. A granting method (E) as claimed in claim 1 , wherein the modification right 
only gives the right to install an appUcation (Al , A2, A3, A4) requiring a predefined 
maximimi amount of storage space in the data carrier (S). 

5. A granting method (E) as claimed in claim 1, wherein the data carrier 
identification information item (ID) identifies a group of data carriers (S). 
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A granting method (E) as claimed in claim 1, wherein the modification right 
also determines the access rights of the appUcation (Al, A2, A3, A4) that is to be modified in 
the data carrier (S) to storage areas and interfaces (3, 4, 1 1) of the data carrier (S). 

5 

7. A granting method (E) as claimed in claim 1, wherein the following fiirther 

steps are carried out: 

generation of a first master key information item (MKIl) and of an associated 
second master key information item (MKI2) for one or more data carriers (S) identified by a 
10 data carrier identification information item (ID), wherein the modification of access rights in 
the data carrier (S) and/or the generation of further key information items in the data carrier 
(S) and the modification device (5) is possible only with the first master key information item 
(MKIl) stored in the data carrier (S) and only with the second master key information item 
(MKI2) stored in the modification device (5). 

15 

8- A granting method (E) as claimed in claim 7, wherein the first master key 
information item (MKIl) and the associated second master key information item (MKI2) 
only make it possible to modify access rights of a specific application (Al, A2, A3, A4) in 
the data carrier (S) and/or to generate further key information items in the data carrier (S) and 

20 tiie modification device (5) in order to modify a specific application (Al, A2, A3, A4). 

9- A granting method (E) as claimed in claim 1 , wherein modification of the 
application (Al, A2, A3, A4) in the data carrier (S) by the modification device (5) of the data 
carrier (S) is only permitted when specific properties of the appUcation (Al, A2, A3, A4) that 

25 is to be modified are determined. 



10. A data carrier (S) for running at least one application (Al, A2, A3, A4), 

having 

at least one interface (3, 4, 1 1) for the contactless and/or contact 
30 communication of information items, and having 

computer means (6) for running the at least one application (Al, A2, A3, A4), 
where information items communicated via the interfaces (3, 4, 1 1) or information items 
stored in the data carrier (S) are processed, and having 
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Storage means (8) for storing a &st key information item and an associated 
data carrier identification information item (ID) that identifies the data carrier (S), and having 

checking means (6, AS) for checking a modification right of a modification 
device (5) to modify an application (Al, A2, A3, A4) in the data carrier (S) via the interface 
(3, 4, 1 1), where the checking means (6, AS) are designed to check the association of the first 
key information item (Kl) stored in the storage means (8) with the second key information 
item (K2) output to the data carrier (S) by the modification device (5), and having 

modification means (6) which, following confirmation of the modification 
right of the modification device (5) by the checking means (6, AS), are designed to enable 
modification of the appUcation (Al, A2, A3, A4) in the data carrier (S) by the modification 
device (5). 



1 1. A data carrier (S) as claimed in claim 10, wherein the checking means (6, AS) 
are designed to confirm a restricted modification right which only gives the right to install 

15 and/or update and/or delete the application (Al, A2, A3, A4) in the data carrier (S). 

12. A data carrier (S) as claimed in claim 10, wherein the checking means (6, AS) 
are designed to confirm a restricted modification right which only gives the right to modify a 
specific application (Al, A2, A3, A4) in the data carrier (S). 



20 



25 



30 



13. A data carrier (S) as claimed ia claim 10, wherein the checking means (6, AS) 
are designed to confirm a restricted modification right which only gives the right to install an 
appUcation (Al, A2, A3, A4) requiring a predefined maximum amount of storage space in 
the data carrier (S). 

14. A data carrier (S) as claimed in claim 10, wherein tiie checking means (6, AS) 
are designed to confirm a modification right which determines tiie access rights of flie 
appUcation (Al, A2, A3, A4) that is to be modified in the data carrier (S) to storage areas of 
the storage means (7) and interfeces (3, 4, 11) of the data carrier (S). 

15. A data carrier (S) as claimed in claim 10, wherein the computer means (6) are 
designed to run an application (Al, A2, A3, A4) formed by a Java applet. 
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16. A modification device (5) for modifying an appUcation (Al, A2, A3, A4) in a 

data carrier (S), having 

at least one interface (12) for the contactless and/or contact communication of 
infomiation items to a data carrier (S) identified by a data earner identification infonnation 
item (ID), and having 

storage means for storing at least one data carrier identification information 
item (ID) that identifies a data earner (S). and an associated second key infonnation item 
(K2), and having 

computer means (13) for modifying applications (Al, A2, A3, A4) in data 
carriers (S) via the interface (12) where, in the course of communication with a data earner 
(S) identified by a stored data carrier identification information item (ID), the modification 
right of the modification device (5) is output to the data carrier (S) by communication of the 
second key infomiation item (K2) associated with this data carrier identification information 
item (ID), whereupon, following confirmation of the modification right by the data carrier 
(S). the modification device (5) is authorized and designed to modify the apphcation (Al, 
A2, A3, A4) in the data carrier (S). 

17. A modification device (5) as claimed in claim 1 6, wherein the modification 

device (5) is formed by an operator computer (10) containing the storage means and by a 
reading device (2) that is connected to the operator computer (10) over a data network (NET), 
the reading device (2) comprising the at least one interface (12) and at least part of the 
computer means (13) ofthe modification device (5). ' 



